Navigate

SI-7 (2)

SI-7 (2): Automated Notifications Of Integrity Violations

The organization employs automated tools that provide notification to [Assignment: organization-defined personnel or roles] upon discovering discrepancies during integrity verification.

Supplemental

The use of automated tools to report integrity violations and to notify organizational personnel in a timely matter is an essential precursor to effective risk response. Personnel having an interest in integrity violations include, for example, mission/business owners, information system owners, systems administrators, software developers, systems integrators, and information security officers.

CIA Levels
Confidentiality	unknown
Integrity	high
Availability	unknown

Overlays
Int-A, Int-B, Int-C

Related Controls

The controls below (if any) were marked by NIST as being related to SI-7 (2).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of SI-7 (2).

Control	Description
No controls

Related CCIs

The CCIs below are tied to SI-7 (2).

CCI	Definition
CCI-001300	The organization employs automated tools that provide notification to organization-defined personnel or roles upon discovering discrepancies during integrity verification.
CCI-002713	The organization defines the personnel or roles to be notified when discrepancies are discovered during integrity verification.